Lucene search
K

5 matches found

NVD
NVD
added 2026/05/12 4:16 p.m.12 views

CVE-2026-42498

Exposure of HTTP Authentication Header to unexpected hosts during WebSocket authentication vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.2 through 9.0.117, from 8.5.24 through 8.5.100, from 7.0.83 through...

7.3CVSS0.00548EPSS
Exploits0References2
OSV
OSV
added 2026/05/12 4:16 p.m.5 views

DEBIAN-CVE-2026-42498

Exposure of HTTP Authentication Header to unexpected hosts during WebSocket authentication vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.2 through 9.0.117, from 8.5.24 through 8.5.100, from 7.0.83 through...

7.3CVSS5.8AI score0.00548EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/28 6:16 p.m.6 views

CVE-2025-8283 Netavark: podman: netavark may resolve hostnames to unexpected hosts

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS6.4AI score0.0029EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2013/10/03 10:26 a.m.2 views

Arbitrary Commands Execution Vulnerability in JP1/Base

Overview The JP1/Base contains a vulnerability where arbitrary commands may be executed when it receives request messages from unexpected hosts in the network. Impact Malicious users can exploit this vulnerability to execute arbitrary commands by sending request messages from an unexpected host...

8.3CVSS7.5AI score
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2013/10/03 10:24 a.m.5 views

Arbitrary Commands Execution Vulnerability in JP1/Automatic Job Management System 3 and JP1/Automatic Job Management System 2

Overview The JP1/Automatic Job Management System 3 and JP1/Automatic Job Management System 2 contain a vulnerability where arbitrary commands may be executed when they receive request messages from unexpected hosts in the network. Impact Malicious users can exploit this vulnerability to execute...

8.3CVSS7.5AI score
Exploits0References2
Rows per page
Query Builder